Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/5X7NBLgahWNeMWhXT7f-hM6QBEo.roa
File: 5X7NBLgahWNeMWhXT7f-hM6QBEo.roa (raw, json)
Hash identifier: 59NAPvfwhBUj5ltEcDyEDGZFqs8Fiel0jTsjFrNWNls=
Subject key identifier: E5:7E:CD:04:B8:1A:85:63:5E:31:68:57:4F:B7:FE:84:CE:90:04:4A
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018CC94D3E91D2FF9FA086941C71D18DF180
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/5X7NBLgahWNeMWhXT7f-hM6QBEo.roa
Signing time: Tue 02 Jan 2024 08:32:11 +0000
ROA not before: Tue 02 Jan 2024 08:32:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 77.47.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 16:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:3e:91:d2:ff:9f:a0:86:94:1c:71:d1:8d:f1:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 2 08:32:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e57ecd04b81a85635e3168574fb7fe84ce90044a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:db:a5:ee:63:ba:52:10:c3:b9:32:0e:ed:ef:
0b:9d:1e:80:fb:94:63:71:ee:7f:07:84:c6:3d:18:
91:50:0b:18:92:51:47:09:1f:f7:37:1c:41:39:78:
e1:18:2b:bc:4d:72:9f:15:77:47:15:e8:c5:2d:c8:
0e:a1:a2:83:89:ab:fb:d5:9f:cd:2f:8d:40:0c:38:
1c:3c:72:5d:55:da:a8:32:7d:3f:40:fd:06:b2:23:
51:40:fb:f9:c3:3d:24:91:4b:fa:84:54:6c:33:23:
23:82:a6:1d:1d:55:cd:a2:7e:3d:0b:b3:be:1c:36:
27:b7:7e:eb:5e:58:e6:05:4e:f3:62:d4:fe:9c:68:
e8:cc:c9:09:f8:d4:d2:30:d3:7e:e2:92:01:69:ce:
9a:f4:03:61:2b:ca:6d:fe:6f:77:ae:68:8d:8b:db:
26:72:c7:3d:a6:14:84:2f:f3:66:d5:20:eb:4b:51:
b9:65:c7:b9:c4:be:f1:bb:2d:a9:46:e8:00:0f:69:
e6:41:c9:94:9b:95:da:c1:63:63:40:24:aa:b1:0d:
41:11:b9:1b:4c:f4:9b:b4:79:20:91:62:6a:a8:84:
66:f4:e0:1f:00:c6:ec:57:51:85:97:de:b6:92:5b:
86:14:b7:c2:a8:37:d1:fa:a4:c7:85:b4:75:78:21:
ca:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7E:CD:04:B8:1A:85:63:5E:31:68:57:4F:B7:FE:84:CE:90:04:4A
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/5X7NBLgahWNeMWhXT7f-hM6QBEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.156.0/24
Signature Algorithm: sha256WithRSAEncryption
84:37:73:97:f4:d6:df:f4:78:f2:26:f2:8f:e2:0e:3b:84:d4:
21:d7:61:23:30:05:4e:c1:7f:70:7a:2e:1b:06:3d:07:a6:4d:
01:51:d3:96:4d:47:70:7b:e6:dd:11:09:9c:3f:84:07:c8:aa:
77:c6:22:2c:39:de:26:63:9e:3d:16:1f:84:ac:80:39:87:b6:
7d:56:cc:4a:85:7e:53:24:33:a3:57:55:fc:d4:0c:d0:28:7f:
0d:6b:7d:11:b7:01:86:ae:f0:54:d2:a1:b5:35:cf:08:d8:a2:
a1:09:01:5d:45:fd:c4:b5:45:81:d4:37:c0:0f:e7:40:2c:e1:
74:ad:69:e5:af:19:82:62:29:1f:af:e4:b3:3d:bb:de:01:c6:
11:f8:0d:3d:6f:1e:ca:90:22:51:1a:36:52:30:21:0f:fa:a6:
2c:1a:00:d5:f6:e4:07:a0:7e:cf:b0:4d:79:13:67:23:34:a9:
30:87:f9:76:73:20:2b:32:63:d5:90:a3:07:15:45:34:4b:4f:
e4:17:b5:ca:4d:10:44:2a:22:99:5b:1e:e0:63:71:04:c2:9b:
46:31:04:99:44:16:b9:45:b7:0d:0a:4c:a3:4b:c9:5f:35:15:
e5:d2:fc:a2:99:99:d3:0b:50:74:3d:f4:97:81:40:ed:6f:7b:
50:2e:75:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org